log_duplicates_as_sightings = false not working correctly

CrowdStrike / MISP-tools

Import CrowdStrike Threat Intelligence into your instance of MISP

MIT License

39 stars 10 forks source link

Closed koppensb closed 1 year ago

koppensb commented 1 year ago

The setting log_duplicates_as_sightings=false is not working correctly. I configured this setting with false but a get sightings added to MISP.

jshcodes commented 1 year ago

Caused by a boolean comparison error on the Malware Event indicator check against the do_sightings variable. Resolved by leveraging the confirm_boolean_parameter helper when retrieving the value from the configuration object.